Topics: Information Security Management
Organization: ISO, IEC
Description: Provides a framework for managing sensitive company information including requirements for developing an ISMS (information security management system), implementing security controls, and conducting risk assessments.